Beware - that email from HR could well be a phishing scam

Sead Fadilpašić

August 1, 2023 at 10:30 AM·2 min read

A fish hook is lying across a computer keyboard, representing a phishing attack on a computer system

A growing number of successful phishing attacks are using fake emails related to human resources (HR) accounts, new research has revealed.

In its Q2 2023 top-clicked phishing report, KnowBe4 said that the most-clicked emails had subject lines related to human resources in an organization, such as dress code changes, training notifications, vacation updates and more.

In fact, vacation updates are the hottest topic these days, which would make sense given that we’re in the peak of summer holidays. In total, emails related to vacationing made up 19% of all successful phishing emails, followed by dress code changes (11%) and the W4 form (11%).

Abusing employee trust

“The trend of phishing emails revealed in the Q2 phishing report is especially concerning, as 50% of these emails appear to come from HR – a trusted and crucial department of so many if not all organizations,” said Stu Sjouwerman, CEO, KnowBe4.

“These disguised emails take advantage of employee trust and typically incite action that can result in disastrous outcomes for the entire organization. New-school security awareness training for employees is crucial to help combat phishing and malicious emails by educating users on the most common cyber attacks and threats. An educated workforce is an organization’s best defense and is essential to fostering and maintaining a strong security culture.”

> Some of Google's new domain names could pose a serious security risk

> These dangerous phishing attacks are more common than ever - here's what you need to know

> Here's our list of the best ransomware removal software

Phishing continues to be the most successful attack vector out there. Threat actors carefully craft these email messages, assuming the identities of trusted individuals and entities and mimicking their style and tone of voice almost flawlessly.

The common denominator in these emails is that there’s always a sense of urgency, as for the scam to work - the victims shouldn’t have time to think things through.

At the end of the day, with a little common sense, phishing emails are easy to spot. Are they coming from the domain of the entity the sender claims to be? Are there any typos and other errors? Are the senders asking for things that don’t really make sense? Is the offer in the message too good to be true? All of these are red flags victims can use to determine if they’re being targeted.

These are the best endpoint protection tools to keep your business safe

Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
PGA Championship: Will Zalatoris says group of players considered asking for postponement after death, Scottie Scheffler arrest
It was a surreal day at the PGA Championship.
Yahoo Sports
Oleksandr Usyk defeats Tyson Fury by split decision to become first undisputed heavyweight champion in 24 years
Boxing hadn't had an undisputed heavyweight king since 2000.
Yahoo Sports
Preakness Stakes 2024 winner, payouts, results: Seize the Grey wins at Pimlico, Mystik Dan finishes 2nd, ending Triple Crown bid
Live updates from the 149th Preakness Stakes at Pimlico Race Course in Baltimore
Yahoo Sports
Report: Fanatics files lawsuit against Cardinals rookie WR Marvin Harrison Jr. for breach of contract
Marvin Harrison Jr., Fanatics said, “rejected or ignored every request” from the company while refusing to fulfill obligations of their contract that was signed last May.
Yahoo Sports
The Mavericks' major gambles pay off as Luka Dončić, Kyrie Irving lead charge to West finals
Shrewd moves and timely deals have the aggressive Mavericks moving on in the postseason — and perhaps to an even better tomorrow.
Yahoo Sports
UFC Vegas 92: Piera Rodríguez DQ'd for multiple illegal headbutts vs. Ariane Carnelossi
Rodríguez was warned by the ref to watch her head. She responded by headbutting her opponent even harder.
Yahoo Sports
2024 NBA Mock Draft 7.0: Who will the Hawks take at No. 1? Our projections for every pick with lottery order now set
With the lottery order set, here's a look at Yahoo Sports' projections for both rounds of the 2024 NBA Draft.
Yahoo Finance
Housing experts revise mortgage rate forecasts for remainder of 2024
Experts are revising their forecasts about mortgage rates and home prices for the rest of the year.
Yahoo Sports
The top RBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Engadget
Apple will reportedly offer higher trade-in credit for old iPhones for the next two weeks
According to Bloomberg’s Mark Gurman, Apple will be offering a little more than usual for some trade-ins starting next week in the US and Canada. That's as long as you're getting one of the iPhone 15 models.
Yahoo Sports
NBA Draft Combine reactions: Edey oh my, Bronny James is ready & whose stock is rising? | On the Clock with Krysten Peek
Yahoo Sports NBA draft expert Krysten Peek is back for another season of On the Clock with Krysten Peek. Krysten just spent the week in Chicago at the NBA Draft Combine and kicks off draft season joined by CBS Sports' Kyle Boone.
Yahoo Sports
Caitlin Clark, Fever facing plenty of growing pains early after another blowout loss in home debut
The atmosphere was electric for Clark's home debut and there were brief flashes from the Fever, but it's clear they've got plenty to work on before they can compete with the WNBA's elite teams.
Yahoo Sports
Tyson Fury vs. Oleksandr Usyk full results: Usyk stays undefeated, becomes undisputed with split decision win
Fury and Usyk finally fought for all of the heavyweight titles Saturday with the Ukrainian fighter coming out on top.
Yahoo Sports
The Spin: Making a call on 5 slumping fantasy baseball stars
All five of these hitters were drafted highly in fantasy baseball leagues. So far, they have not lived up to their ADPs — and that's an understatement. Scott Pianowski analyzes.
Yahoo Sports
Your favorite WNBA rookies didn’t make the cut. So what’s their path back to the league?
For rookies who were waived, the climb to their pro dreams is steeper, but the path ahead is well-worn with trail markers of established success.
Yahoo Sports
Indy 500 qualifying: Kyle Larson locks into the field; Rinus Veekay recovers from early crash to get into top 12
Kyle Larson not only qualified for the 1008th running of the Indianapolis 500, he’ll start in one of the first four rows.
Yahoo Sports
2024 Wide Receiver rankings for fantasy football
The Yahoo Fantasy football analysts reveal their first wide receiver rankings for the 2024 NFL season.
Yahoo Sports
PGA Championship: Logjam atop the leaderboard sets up fantastic Sunday
Collin Morikawa and Xander Schauffele are tied for the lead in the 2024 PGA Championship heading into Sunday's final round.
Yahoo Sports
Attorneys say Scottie Scheffler likely won't face felony conviction: 'Probably about a zero percent chance'
Scottie Scheffler will likely avoid the most serious charges filed against him stemming from Friday morning's altercation with police.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Beware - that email from HR could well be a phishing scam

Abusing employee trust

Recommended Stories

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

PGA Championship: Will Zalatoris says group of players considered asking for postponement after death, Scottie Scheffler arrest

Oleksandr Usyk defeats Tyson Fury by split decision to become first undisputed heavyweight champion in 24 years

Preakness Stakes 2024 winner, payouts, results: Seize the Grey wins at Pimlico, Mystik Dan finishes 2nd, ending Triple Crown bid

Report: Fanatics files lawsuit against Cardinals rookie WR Marvin Harrison Jr. for breach of contract

The Mavericks' major gambles pay off as Luka Dončić, Kyrie Irving lead charge to West finals

UFC Vegas 92: Piera Rodríguez DQ'd for multiple illegal headbutts vs. Ariane Carnelossi

2024 NBA Mock Draft 7.0: Who will the Hawks take at No. 1? Our projections for every pick with lottery order now set

Housing experts revise mortgage rate forecasts for remainder of 2024

The top RBs for 2024 fantasy football, according to our experts

Apple will reportedly offer higher trade-in credit for old iPhones for the next two weeks

NBA Draft Combine reactions: Edey oh my, Bronny James is ready & whose stock is rising? | On the Clock with Krysten Peek

Caitlin Clark, Fever facing plenty of growing pains early after another blowout loss in home debut

Tyson Fury vs. Oleksandr Usyk full results: Usyk stays undefeated, becomes undisputed with split decision win

The Spin: Making a call on 5 slumping fantasy baseball stars

Your favorite WNBA rookies didn’t make the cut. So what’s their path back to the league?

Indy 500 qualifying: Kyle Larson locks into the field; Rinus Veekay recovers from early crash to get into top 12

2024 Wide Receiver rankings for fantasy football

PGA Championship: Logjam atop the leaderboard sets up fantastic Sunday

Attorneys say Scottie Scheffler likely won't face felony conviction: 'Probably about a zero percent chance'